Overview

overview

10

Static

static

10

NEEDY_GIRL...SE.rar

windows10-1703-x64

10

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...le.dll

windows10-1703-x64

1

NEEDY GIRL...ne.dll

windows10-1703-x64

1

NEEDY GIRL...ib.dll

windows10-1703-x64

1

NEEDY GIRL...ks.dll

windows10-1703-x64

1

NEEDY GIRL...ET.txt

windows10-1703-x64

1

NEEDY GIRL...ed.dll

windows10-1703-x64

3

NEEDY GIRL...pi.dll

windows10-1703-x64

1

NEEDY GIRL...64.dll

windows10-1703-x64

1

NEEDY GIRL...ources

windows10-1703-x64

1

NEEDY GIRL..._extra

windows10-1703-x64

1

NEEDY GIRL...p.info

windows10-1703-x64

3

NEEDY GIRL...config

windows10-1703-x64

3

NEEDY GIRL...nagers

windows10-1703-x64

1

NEEDY GIRL...assets

windows10-1703-x64

3

NEEDY GIRL...s.ress

windows10-1703-x64

3

NEEDY GIRL...level0

windows10-1703-x64

1

NEEDY GIRL...level1

windows10-1703-x64

1

NEEDY GIRL...level2

windows10-1703-x64

1

NEEDY GIRL...assets

windows10-1703-x64

3

NEEDY GIRL...s.ress

windows10-1703-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEEDY_GIRL_OVERDOSE.rar

  • Size

    615MB

  • Sample

    230420-c9hrtafb25

  • MD5

    ed5f8a647faa00eff8b3245acd41dc4a

  • SHA1

    7359b3ddc0ad915c572eb69dc7752270572bb203

  • SHA256

    e0e7e5e85aa6ee5411411e7b8d6961aefb1fb140f0398d9c573fee982286ccb9

  • SHA512

    2e807f657da21ebc58394acebf87ce250c17416357cb069a6a8970577399aa7a1f3e87cd936c5d963df1531fb856c83aa7d16e0ad45d8e1c296e91c29c9da0ba

  • SSDEEP

    12582912:eNlnkimyvViqYaDp99+Q3w+GyqEXQzWXmVK5yhWNsnPIbd9:eD3L1CQ37G6XQzu8KEhKsAZ9

Score
10/10
bazarbackdoorbackdoor

Malware Config

Targets

    • Target

      NEEDY_GIRL_OVERDOSE.rar

    • Size

      615MB

    • MD5

      ed5f8a647faa00eff8b3245acd41dc4a

    • SHA1

      7359b3ddc0ad915c572eb69dc7752270572bb203

    • SHA256

      e0e7e5e85aa6ee5411411e7b8d6961aefb1fb140f0398d9c573fee982286ccb9

    • SHA512

      2e807f657da21ebc58394acebf87ce250c17416357cb069a6a8970577399aa7a1f3e87cd936c5d963df1531fb856c83aa7d16e0ad45d8e1c296e91c29c9da0ba

    • SSDEEP

      12582912:eNlnkimyvViqYaDp99+Q3w+GyqEXQzWXmVK5yhWNsnPIbd9:eD3L1CQ37G6XQzu8KEhKsAZ9

    Score
    10/10
    bazarbackdoorbackdoor

    • BazarBackdoor

      Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.

      backdoorbazarbackdoor

    • Bazar/Team9 Backdoor payload

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UIElementsModule.dll

    • Size

      887KB

    • MD5

      ee0c46c8344158e5565863872c1d99e0

    • SHA1

      e3d058876ff598dd18b24131c7b95045be078fcf

    • SHA256

      737333870cc8c3903bca3c953c08e21b67152fefcee3bf2b4f4112a42ed1171b

    • SHA512

      d04485ab8e0fd970429491751e35b586de44a528db267931ac9191eb47f900e8aff9402747f4268c86428baa2b29a6605bc0b6347ce7748ff28a02a3b5cd0739

    • SSDEEP

      12288:KFPiTNiZV36E1PcBX1tZxvoXAAyilMwCStIfOiRtuffGhJhgWtd5rU3Ig2f:YINiZV8BXoyoHCLOiKffG60d5o3IF

    Score
    1/10
    behavioral2

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UIElementsNativeModule.dll

    • Size

      33KB

    • MD5

      cd962c7b8d316c9adf2f09e706d8765e

    • SHA1

      1dea4bbcf7a84b1e3e29195f254bdc197397f535

    • SHA256

      0c5bb9aa0f762e34e0571e1c26a1090f660149516922d0ff9ca9b13ecbbb9987

    • SHA512

      2b24ec70cb1319c20acaa2dfa10ab2b8d9aa33d8d44d99ed0924fb87589660916cd964150388afffd6f01bf505fba55311495cee01ac1909e2cab9d289896885

    • SSDEEP

      768:+dE32vdAmDRIJoorW77Rfhc8Nj/PimEczyj3N5ueeaAjRTz0pDIONs2/Nanpn7+E:p6AmnfNNj/6gzyj3N5ueeagRz0pDIONe

    Score
    1/10
    behavioral3

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UIModule.dll

    • Size

      20KB

    • MD5

      806e1f9570b4dccdd00706ccc9fd444b

    • SHA1

      f0fe6e67d4ce249002f2cfd1de4bb61970db7ce0

    • SHA256

      1291bfb8dc81e3e46f87bc33a49b9dffbc759ac89ff737776551102493a609bb

    • SHA512

      9ab68b0613e44b3c8f6820c95762baa0eb8cf70856cd0b4b219a7624359dc6dbcc401fb10d1840e1eb743b8a86f550fb8b290573035b8f1bf9233b0f4b4fac5d

    • SSDEEP

      384:Pv0BxC8NddI2xH9jrh7M5jZMbECPoIH8tQcjOzz2hjMX9LZQ:PmFXq5EEW/H8ahWhjMX9LZQ

    Score
    1/10
    behavioral4

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UnityAnalyticsModule.dll

    • Size

      11KB

    • MD5

      52fbde3da3519e8677f5635156a703c0

    • SHA1

      a16ca904e94b7ed540cb758a9d1e01836560fb82

    • SHA256

      f1dae9473f9af3144448349541b5c41a1ebeef6d16b7854067601606fe7fc68d

    • SHA512

      8bfe35ef7db395bf1e53d4b07ef98deb1870afabe631e1f36d46d86860cdfbd6ce2409979965902801c13f31772bf0493b279a2550ce30b5da27c2f69516536e

    • SSDEEP

      192:cZVW4QdZF43j+CWGsMV7F8t1fE1ond/PPnr+PNbDaZSb:cZcF43j+RG/Z8ttEind/nnr+PNbDoo

    Score
    1/10
    behavioral5

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UnityWebRequestAssetBundleModule.dll

    • Size

      11KB

    • MD5

      43e49578e8ed5b4ded9986216af2b973

    • SHA1

      b0d8f489de6e134430dd40edd57e95ea55ef0c8b

    • SHA256

      2c1004a4459211f49542e445d7d94ad546c8a4e38f67279968d3e622ad0e5d48

    • SHA512

      68fa0b1bf8864b39286ef52ba3d8e1593fe5abc9662e1ace00af48cfbd29c8b83eccbaf552ad6709ab0fe409c694dffaed8bc9d76cb098d04848d1c14c1e6c75

    • SSDEEP

      192:nUzOGs9OUz2hy9XycjOSL2UUvpueLcd3:EOGwlz2hy9XycjObUUBueLq

    Score
    1/10
    behavioral6

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UnityWebRequestAudioModule.dll

    • Size

      10KB

    • MD5

      f0d46be90ff2b3b0b94fcae7c602a688

    • SHA1

      03c41576af659d10c6fa3c23d7ebdb301d53598f

    • SHA256

      6540edb506e54d5383ad5212b4c09b0792f5828f4b1ae01849ac31d4a125cc0b

    • SHA512

      c6e394a952cd3938f46156e173baa57c8034dacb76af6864bf4f33b67809db4fb6961443c549b445e24096c115146e9b7fccef30edac878c58b21fa2d33cbbd8

    • SSDEEP

      192:UJegDSLe07TlOnUz2ho6XycjO12cUAx92AHdz9:Me6S17TkUz2ho6XycjO8cUA/2A5

    Score
    1/10
    behavioral7

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UnityWebRequestModule.dll

    • Size

      31KB

    • MD5

      3de8fba8e2fd7c395cabbf8aa67afac8

    • SHA1

      5cb54d4b6fec1952b0c12215fbd395a2385bacb8

    • SHA256

      2a7fd5388f1c128fbd64f6ccd4ce2edebccacbb9ca7fe4ff06649a3138edefb1

    • SHA512

      4c9b612b3d8b2c6e78b1643c795842c4d722205d34ea73ee0c5446fea85ac9e2e0af83a6653b08535f734ea8662c1d9c13255a8de96ac3a04052fbefc55a39bc

    • SSDEEP

      768:xTjZ6KmN7CzRGOAp49MwcBAlmpH8bhBhjMXGprt:JZ5RzEK9pAVH8bhBhjMXGprt

    Score
    1/10
    behavioral8

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.UnityWebRequestWWWModule.dll

    • Size

      10KB

    • MD5

      f9c61d9ba6bd8b5c8a3f58e5c81c57bc

    • SHA1

      732fb24c4c17c1013fbf896d24b2833a8b2740fd

    • SHA256

      a92f6d47034c1085d1587197f072574b1df35db2e8b94b0c61287d56df430bdc

    • SHA512

      51fac644755b54f4056e45a50826aa8c733d7ebe849e5b601ebbe07f32e9b9899a38b53f3cdc773fe381e4e0a408e1efad291647cada56b19ad33642b9060eb1

    • SSDEEP

      192:aIeGcfU0Z0faccjOWAQ2hjMXLs/UkpIY2LlIL:EXc0ZHccjOWt2hjMXLs/UkpIn

    Score
    1/10
    behavioral9

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.VFXModule.dll

    • Size

      14KB

    • MD5

      ba656ffd8cf0e7e290517a23d0f19155

    • SHA1

      1fb8b27974ac7eb1eda84ea0628ff9b1e0f8e8c6

    • SHA256

      5be679c7b47f4225d7fef7a57608e8c53fd658953aa61e0fb280a718c5bad474

    • SHA512

      1ba4010a7d0dcb295e7ecae8f7ee6a3034d4310e9625cdffeea94395cc5a7d9a32bcd372b128ff7d5f5b5f79a066a0954c5f161349ab01d78989172e960f107b

    • SSDEEP

      192:g3yFlAW4Bod1zBZtJl/ltbHkpb3Aq/rkBWlCeAcnr+Pek1eF:g84BodFrtjkpbQq/EWl9Nnr+PekQ

    Score
    1/10
    behavioral10

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.VRModule.dll

    • Size

      11KB

    • MD5

      4cc1bf78cb53e335d3e8b52bac6fa4ef

    • SHA1

      c4389086df4a4366bfe113aad215641770092f48

    • SHA256

      42d02a9ea179613a8968d522c3064b89e2182d96ca6affcfbaeeda0fcea54c41

    • SHA512

      e418d18e45b4a3b46628ed4b00e0a2e7a20893c17be24b2fd57e623ada33befefdba09175b2c0ff4acb7a824d85fda76414fec7969f515008f2d90227a2694ea

    • SSDEEP

      192:aC9t5tAfSgqNLo8uKeQDqi3sdm/q8tuWRcjOiz2hjMt9xq/kkqVJ:aC9t52fiLbuz0fZ/q8tNcjOiz2hjMt9h

    Score
    1/10
    behavioral11

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.VideoModule.dll

    • Size

      13KB

    • MD5

      23defcb712e30dc9fcdb183098c3b321

    • SHA1

      5b819d63195f34a91e59b93a8237aae20599cb25

    • SHA256

      6cb19c7c76b0a1b51a2e944a038b21d697dbfbaa11ec8d8f2dc711c90615f945

    • SHA512

      73f6955d280d413a99cc3cb16e81f3a469db52480310fe203b89c6e0f3bcab33a5055a667841a54e53b1bd9871a4ccf819c49c7c4f1797a63cda69e2a6f7a807

    • SSDEEP

      384:/pFLMM+UUlQBfc0/hL7K8cjOYz2hjMXROAU:/pFHBfj57K8hVhjMXROAU

    Score
    1/10
    behavioral12

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.XRModule.dll

    • Size

      23KB

    • MD5

      8ec6937b496dba6efe76735f88a8fd7f

    • SHA1

      b393cd7ba9cac878b0fe96f878f51b537d9619d6

    • SHA256

      82ee4ccdf357a9671445019cd0deec275331dcb9fc5939c3eccfa08b825fc9df

    • SHA512

      cd982dc40cd52e42801081570960a54e832029f05a8e3e255b77156a0c0eebb87638d33ea8f4f914e8eafe70c0238b9108daf3fec8e07cadea4295fda876b2ca

    • SSDEEP

      384:NMlx8JI34LqBLdappoRz10frYiSD1Ze2c4JCk67IL7bxy+q/mnnj0k+PekdYkT:NsSJE4LQLopOT8LSG2zF7bxXq/mnj0kK

    Score
    1/10
    behavioral13

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/UnityEngine.dll

    • Size

      61KB

    • MD5

      d30ed3c2688de2536e7063d9417b125d

    • SHA1

      2fcf74a0c175b0c36f0435db4d9b613baa2ea2d9

    • SHA256

      8b00c6f1f893e4d23b6eff6dd9d99ba99cbc96bc16b2f361336e8bc4bf77016e

    • SHA512

      51983ccb7d607dbbe246dee6795a49f40eaf762bde53773a6a3236a93c2c0bd09f7d466e5d76f09ef368346176309cb01e6bb6e86f7804815606977d903dc1df

    • SSDEEP

      768:YJVe+V3oVryz8UKRVsITOSsRlsfGcia84LI5PLeWBK3bE0qA373GWdnL4h8Qm/:YSc/zJA/OSsRKaV485yWsrpLGPh8Qm/

    Score
    1/10
    behavioral14

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/mscorlib.dll

    • Size

      2MB

    • MD5

      948962bc0dc40d126bf0ce53ebd9b35e

    • SHA1

      8f7b3d3ae33224b22ecec02487d2d0303c4b63b3

    • SHA256

      74745f989b2fa7f9129d4f12f5431809947b27f0466c4be1bf27b43a3e55268a

    • SHA512

      0543459d30f2fa9af643b3a38c7339b9fbd09e57d9697e6b0a02d228726c01f91d06d2aec469554eb5f6ad0690007e0dce3b549ec816426d9eb042f20be4ebf5

    • SSDEEP

      49152:znr8z8P8OY6l8AkUz6bgIW2tHhCxhtNfH78Nt+:zLY6Pz6+fxR

    Score
    1/10
    behavioral15

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Managed/steamworks.dll

    • Size

      358KB

    • MD5

      bb1db47525a98aee7195347e49c931b9

    • SHA1

      c1541af5fbda287e4da50590093422f24e11e354

    • SHA256

      8b71aa4b96c8a0e9466192606329b8c6d62e3356ec5271bebca3240b563a44cb

    • SHA512

      a1f181fcda7120bfe505bb8061f4f7397049b57d6050c9ab19209a16ec6f2a9fa01eb9fbe3269fc8e0e3bd20aaea983830ea0c7d625c5be6e23cd38d42dd1883

    • SSDEEP

      6144:wlryp+DE3TnjMlRlxk3hcZz5UxbOeAJKMbJW908kZIMAlF:wlryp+I3TClY0FnUMbJ2I7Az

    Score
    1/10
    behavioral16

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Plugins/Steamworks.NET.txt

    • Size

      230B

    • MD5

      3331e453ce5c3ede3e125d3f6c384822

    • SHA1

      3a8cba6bfcffd9cce9974ae930c861eb5edc924c

    • SHA256

      926f554e2f5c21c8e8ee3d5445e4976f7cc7ca23d3895be4cc3604c99a4ea7e1

    • SHA512

      ab332fabfebaa2b3def08336717c97811b79d2c2f23d00302ce81a6ead32e05754dbb450205bdf15c20b80e8a4ecb16e5ac423c7a6ce99f1fae194ee39ae72f1

    Score
    1/10
    behavioral17

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Plugins/x86_64/lib_burst_generated.dll

    • Size

      142KB

    • MD5

      a66ce2bf65372484cdf8164a5dc3c14f

    • SHA1

      34d15110e5f4ec3bf14a6a777da3c35ec83e7b73

    • SHA256

      743017570d7a32d7e0ceedd01a2b41f5d35151315d0a195e13abc7e08545a3ee

    • SHA512

      ab1a77a921914a66e769ffee888b493ec8e98d5fcc421e0054d68a157f13a184244feb06ff140b260050fd8c37e422d8b355260a8f9c8b82f94eeff0f35ac8ab

    • SSDEEP

      3072:q9RhglCswTV4375gHcn4N7B5/ACfwrvAhllpaF:hIZ4LeHiQD6vAnl4

    Score
    3/10
    behavioral18

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Plugins/x86_64/steam_api.dll

    • Size

      234KB

    • MD5

      9084e3645f0601810362084da53203db

    • SHA1

      b453c5a8e8cd839d3c5ed2ec4ed05805179ea3c2

    • SHA256

      ce6f48938493b90ffa175fc93f2b8ee5189e5db81f1274d5b57c9841d6fe4179

    • SHA512

      049561b2b7fad8362ce8eb1269637f999d1722cd26f19b47fc7154d41ddf63590c9d0e8194a1c76f8c4885414f38f47539c634d40c989b34a27f84878e6f5bbd

    • SSDEEP

      3072:7RJaosHSxAP9QdUQC2mCGqc9tqqg7NTswFd7QgOWUXkZFBTbCIdmtrrpSCX+Nwyb:7RJ9PAFGNGtqt7NgcEr+NwyEBCcHHO2u

    Score
    1/10
    behavioral19

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Plugins/x86_64/steam_api64.dll

    • Size

      259KB

    • MD5

      cbc8b390e065c29572494901b151989e

    • SHA1

      238243867b2f2daf54ac0dd5f3b68f9d99f8abaf

    • SHA256

      ca1fa9a7609ab10b7926400559cf073e5888423cc156af72c6027d72a89eea73

    • SHA512

      e8deb190d9b00d9931f480754cd46b0fa16c4080bf12c25d024ee2c14e75e27a7ed9f9b357a456037c9123537910d5186b7361f359d44a25b175f55bfb9affa7

    • SSDEEP

      3072:WZz7iKHWadsCKUB6/KuBHlvdXGFcKLF65lhTbCNTnJvxfyN+ve2UhMBCcJo5gDst:+7i6ddsCKg6/KuBFFXyDyEBCcUb

    Score
    1/10
    behavioral20

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Resources/unity default resources

    • Size

      4MB

    • MD5

      3c1e2f951b34cadcc7edf54e3d8631d0

    • SHA1

      b560ffc0431e9f4bc7ac983b0cc1de026108139b

    • SHA256

      f09442d67817abb92bfb9ce45c5bcd6d39732ea91ad6111877af3c81a3352b14

    • SHA512

      3698bf8b8fd8c7c5a5ec1f0b7dd2afcadf873a03aed2cfdb5d45a1b5c9e0edf088cb3a0addc82473cff77fd15734e7be774297d48908823ddf14681c1e193e49

    • SSDEEP

      6144:jeqgcJVTjaIpD/rd+KnalA83ukbpEuD9hO3YWO/OJ9WqOmKySHCkcChWcbjutYRs:jcAazhh7POjdOZb8Hn

    Score
    1/10
    behavioral21

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/Resources/unity_builtin_extra

    • Size

      326KB

    • MD5

      c38d957b7306309510f943bcb0973688

    • SHA1

      9a28c296bcb869b26c4be83749bdf4d835c9069a

    • SHA256

      c7c17c584c4ee8d171e2004291db0aef16d693db67dd5db4911a94e412aaed8d

    • SHA512

      abcd79bb580e199da8733c8e89d4a4b8b3d4b41c172120146d070693f596de9d4f8522d658d760b11f00acce27fc260f40329e9842529dd4f2a3d5cad5f0f9c7

    • SSDEEP

      1536:VS8pV3AxDdM8y27nynWz+hV//d2i05+iVGi/9ivZJTfgx3N6Z7e8aigiV6Z7eCXN:I8pVwxDm8yinUJhwafmNXq0Lhk1i7Q4

    Score
    1/10
    behavioral22

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/app.info

    • Size

      22B

    • MD5

      3f2518aa5817fdc7891cf0d4224fe933

    • SHA1

      d0992cd4c818e1b2da01303317a65ffb863e1ae7

    • SHA256

      80c98f510787d159f4581ac5a28399e7ffb4b380f601d51510308dae2f5e223d

    • SHA512

      c93175ce815a2b2545788a0cc5adcdc9d7ec6b9875635198db9ccaa80202f8b2b6ec25dc5a882f18535c095e7c4783ccb766e2aa6f270666f16ccf4979b51447

    Score
    3/10
    behavioral23

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/boot.config

    • Size

      73B

    • MD5

      d16e6e06defa88c816431193e3cb8505

    • SHA1

      14ee2c77822abff0af6926890e5b10595f0b2b0b

    • SHA256

      bd06e2ac0dc8264120ac89bf7d608f6396b89a0776ea5f981bc2b7677c9f9c5c

    • SHA512

      2ffe8b8e2def50c06bd520da9000d61deffa243d27c8eeae11372dd929782bf32fdc4d673a2d29f709bf31e467944624bdfe8f95739a5c3469d46006f42a3a15

    Score
    3/10
    behavioral24

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/globalgamemanagers

    • Size

      1MB

    • MD5

      0c19b6666d05f2c42651cdb85f71848a

    • SHA1

      ca096cc8b2dd14712c4cbeb29060eb70f075f7bd

    • SHA256

      1f0e937de83e85ab71603ca83dedadb01a7397cf356d28dbaf2c554fff4ca0e7

    • SHA512

      4e5f9b4ce9a9d96646415ee42685f9781a0169c86e5c1080bc75b9068d8fe050da53c78e0903e4fcb68c9401f9b78e224bf1481101a0fe131779ba53ba485693

    • SSDEEP

      6144:kN4QG/xfcttutRPYXDEUhj9XhaeM6ZvBdq4Cu1ZEWgiN3xP9FpyVqdlacaMuazvh:rQTLEu9XharaBdq4C0JP9FpyVwl5

    Score
    1/10
    behavioral25

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/globalgamemanagers.assets

    • Size

      1MB

    • MD5

      c1cefc211c5b2e460558e3f9eceaae38

    • SHA1

      e3d840d8117fec7a068e921430f941373b89c724

    • SHA256

      e313a3e5ec4d4f904adb5fcf0b493b2daf10e89d25f5c65e91184840fe66b8b3

    • SHA512

      ef6b7822dbde08abf885d941bea5d6ebc26e110ddea49eb4c0f0f4da770d21ef88652eccde3490da5e914bd87bd6e9b7f9ee470577bd79bfc0f181b51b337c10

    • SSDEEP

      6144:5bqbVsjxA9Sxc2sgXBSwAs0s6kB8k1vhqVtbEJZGRCpKgUWFQY3iOu9Avi9auSZ+:L/BF96kB1vcEGv4MEpf3

    Score
    3/10
    behavioral26

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/globalgamemanagers.assets.resS

    • Size

      2MB

    • MD5

      56f347862c813ed4b8e31078710d1775

    • SHA1

      fd69766eb5fc991d53a15a968200f165ec836eaf

    • SHA256

      5be6467e4676d13e1464e1c38b7dea15eb3c2d79ad467fce700aecfabb1ae8d8

    • SHA512

      65563b77b1cda216cf28c7a122fea8a2a066873de9fd31396fab932430b35165703e6976b9afa589bb6574a690f78dc8c04a95e88e7239e8f292cb36fc726f8f

    • SSDEEP

      49152:LZAvSYIAjyK5hZAAJc56NFbqnxpnKpOuoeK:LZAvSYIAjR5hZAAJc56NFbqnxpnKpOu4

    Score
    3/10
    behavioral27

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/level0

    • Size

      137KB

    • MD5

      08871b3ffc659736365cc98a78b89164

    • SHA1

      022ad36920984a6e51fad73b2c7a20bd1c2d2340

    • SHA256

      9e6ecb02fcdbe29fb8f183b126e5475b92b41028555706e33d03c4d34600525f

    • SHA512

      626227d2a624761c679f1c0edb43e245a3438fa2ba586fe9387e4ead4273be83d3295a4abb190811a3a9c332aa60ed6f520d6aa2b40669e30c40391b5ffe9f67

    • SSDEEP

      1536:TgxgyIKgsDs/xe4IKmfavficfHRGQ1ebWEJsNYL+xz0ByeTh1Wn7V1DFi26NW:N7Vs0I

    Score
    1/10
    behavioral28

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/level1

    • Size

      298KB

    • MD5

      18f24c764f1d0499351d7a0b4945d50d

    • SHA1

      34132d534c4f5d3f91cbb740282896a86cc6ea67

    • SHA256

      ddb30c7120272e210dfe66dff64074031a89691483fb3aa36bd9eef241cf9459

    • SHA512

      b9202ff44be2771016ecaf19c5501fd666c0f8df6e56559770426a31e1e182ef101b2691914d9eb901626d4fd1002097878aa100057b112d992cc1fa55c07a82

    • SSDEEP

      1536:aO45z4zptoe/cznm0cWDYOUtOQYN8tRCkizAdTe6N3yx0rGVYf65czOdBE7WlovH:Lsm0cQQYaCkwGM0P

    Score
    1/10
    behavioral29

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/level2

    • Size

      24KB

    • MD5

      64ea1be9722e4146a4471927be7afa7a

    • SHA1

      a80a7a03d50b97c42af023aaee00557ca7443ade

    • SHA256

      04577d986af832ff89fe47a48502001d795712c4e7503286b7a641d682ffe12a

    • SHA512

      0961b8f0eb937858dbcab49876701f0b736157f6997e95ca49d2809fe4ee1da223b1ca775c71cee73c51ef4607781251c0ec4d64c828a0ce47e0a8cc7e4b2d0b

    • SSDEEP

      192:FYQ8S9j88s6X+0Rncyg3GiXI49VfRRM/wFbpFtDtAhLl6E0DEQqKt:2Q8SK8s64JXp9VfO6

    Score
    1/10
    behavioral30

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/resources.assets

    • Size

      9MB

    • MD5

      8f741b37842ca0f93212af8fea1fbc6d

    • SHA1

      08c4f6417ebd73d34d4316bc68fc65890bd2b599

    • SHA256

      f9ab2065996da86b330e593f7229e16efe6a14ac74640f2b4248e3ebb8ba8d63

    • SHA512

      bdf8058da1cf555abe1c74deba8a260b9a31abf7ffc2d97f8c5a5550bf4136d628e918c7d937e5298598599499e419cd9acf873d78425713076890e95bd6beb2

    • SSDEEP

      49152:YmAqNtEayuhC8MJFLqprb1lqS5TBAAnagjmRxpO92WE8INt9xxjpFK:YmlNByuIffLqprb1SeFIx2cg

    Score
    3/10
    behavioral31

    • Target

      NEEDY GIRL OVERDOSE/Windose_Data/resources.assets.resS

    • Size

      951MB

    • MD5

      de2149c9455ac91646bf126c43035d03

    • SHA1

      975efc88a15897b03e3dc975381aca7ea401f487

    • SHA256

      88f8e878fd542d5a0782b49e5a04b931dc90725e747430c38be31fb91a0a5d9d

    • SHA512

      ef99385a2354e1e83dbd6623e3a3ba501578db966ceb3fcfbc7b137ba568d5c274a69b8dce91788794928028b7a6adfa9db23b1fb967c173a461e41b6c0cded8

    • SSDEEP

      6291456:p/0Hd5KObXBZTciu9ZyCeJBif+7RG2BsgsNMd0aKsveYyuB8cItXmj3/atM0:F0HGObvCuG2BEeB8duG

    Score
    3/10
    behavioral32

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

8
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

bazarbackdoor
Score
10/10

behavioral1

bazarbackdoorbackdoor
Score
10/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
3/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
3/10

behavioral24

Score
3/10

behavioral25

Score
1/10

behavioral26

Score
3/10

behavioral27

Score
3/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
3/10

behavioral32

Score
3/10